Compliance Articles: Learn how to Manage Risk & Improve Efficiency

August 26, 2010
FAA-Dangerous Goods-Are you fully compliant or just barely meeting the intent?
By Mike Alston, CHMM- Owner Transportation Compliance Associates Inc

August 25, 2010 Can Tax Evasion Land You in Front of a Firing Squad? It Can in China! By Brian Mahany

August 25, 2010 Security Management: Control Assessments By Robert E. Davis, MBA, CISA, CICA

August 23, 2010 BPM: An Ethical Perspective By Bob Larrivee, Director & Industry Advisor for AIIM

August 22, 2010 Are Your Assets Safe in the Isle of Man? By Brian Mahany

August 4, 2010 Business owners beware - here Comes another whistleblower Program By Brian Mahany

August 4, 2010 Thousands of New IRS Agents Hit The Streets! By Brian Mahany

August 4, 2010 10 Reasons for Ongoing Policy and Procedure Management By Katie Weaver, Awareity

Jul 30, 2010
Are web threats still relevant? Why web filtering is an investment, not an expense!
By Christina Goggi on behalf of GFI Software Ltd

July 7, 2010 Security Management: Legal Compliance Alignment By Robert E. Davis, MBA, CISA, CICA

June 24, 2010 Copy Machines: A Wake-up Call for Security By Kattie Weaver, Awareity

June 8 , 2010 Who is this for? By Bob Larrivee, Director & Industry Analyst for AIIM

height="65.5" />

June 1, 2010 Mounting Challenges with People and Processes…Do you need a Tractor? By Rick Shaw

June 1, 2010 Organizations are Not Managing People and Awareness Ongoing…Do you Know Who is? By Kattie Weaver

June 1, 2010 Facebook Privacy – End User Awareness and Accountability Lacking By Kattie Weaver

May 19, 2010
401(k) Ruling by Supreme Court Begs Fiduciary Liability Consideration
By P. Noble Powell, Senior Vice President, Willis of Maryland

May 19, 2010
Mutual Fund Fee Rules and E&O/D&O Coverage
By P. Noble Powell, Senior Vice President, Willis of Maryland

May 19, 2010
Investment Advisers, ERISA Accounts and the Department of Labor
By P. Noble Powell, Senior Vice President, Willis of Maryland

May 14, 2010 Software Vendor Audits By Michael Gregor, President, Compliance Gurus Inc.

May 14, 2010 Computer System Validation:FDA Inspections By Michael Gregor, President, Compliance Gurus Inc.

April 30, 2010
What is a “Failure to Implement”?
By Katie Weaver, Awareity

ot; align="left" valign="<mce:script">uot;top">April 18, 2010 When It Comes To Banking, "Don't Ask Don't Tell" Is The Best Policy! By Brian Mahany

April 13, 2010 Culture Eats Strategy for Lunch By Rick Shaw, CEO/President, Awareity

April 7, 2010 Clawbacks! Friend or Foe - You Decide By Brian Mahany

April 7, 2010 Stupid Can They Get? Plenty Stupid! By Brian Mahany< /td>

April 5, 2010 AntiMistake Software – Preventing Human Error and Lack of Awareness By Rick Shaw, CEO/President, Awareity

April 5, 2010
Identifying Red Flags, Warning Signs and Indicators
By Katie Weaver, Awareity

March 24, 2010 Would Your Records Keeping Practices Pass The Test? By Bob Larrivee, Director & Industry Analyst for AIIM

March 4, 2010 Alas, Poor Peter, he only used his PDA. By Bob Larrivee, Director & Industry Analyst for AIIM

March 3, 2010
New ITIL® Process Compliant Certification Delivers Confidence in Service Management Software
By Gerry Roy, Director of Solutions Management for Service Support, BMC Software, and Ken Turbitt, President and CEO, Service Management Consultancy (SMCG) Ltd.

March 1, 2010
Massachusetts Data Protection Law goes into effect March 1st – and there’s no reason it shouldn’t as it really isn’t new
By Dorian Cougias

February 23, 2010 Maturity of Hackers, IT Managers and End Users By Rick Shaw, CEO/President, Awareity

February 23, 2010 Maturity in Management and Leadership By Rick Shaw, CEO/President, Awareity

February 23, 2010
2010 – The Year of the Insider Threat
By Katie Weaver, Awareity

February 13, 2010 Scam or Legit? Pre-Paid Debit Card with No Personal Details of Holder By Brian Mahany

February 10, 2010 eDiscovery StraightTalk with James D. Shook, Esq.,”New Decision Orders Sanctions… But Provides Strong Guidance” By James D. Shook, Esq,

February 6, 2010 The Ten eDiscovery Commandments Revealed By Andrew M. Cohen, Esq,

February 5, 2010 Regulatory Compliance Costs Are Escalating By Rick Shaw, CEO/President, Awareity

---

February 5, 2010 Recruiting Insurance: Automatic EEO / OFCCP Reporting and Tracking By Joel Passen, Newton Software

g="0" width="100%">

February 5, 2010 How to Choose Applicant Tracking Software to Ensure OFCCP Compliance By Joel Passen, Newton Software

t;>February 5, 2010 2010’s Elephant in the Human Resource Department: EEO/OFCCP Compliance By Joel Passen, Newton Software

February 1, 2010 Filing 250 Refund Returns For People Who Were Dead By Brian Mahany

---

February 1, 2010 Tax Liens Blues? Read before you Pay! By Brian Mahany

---

January 27, 2010 Perspective Matters By Bob Larrivee, Director & Industry Analyst for AIIM

January 15, 2010 Management Innovations and Transformations By Rick Shaw, CEO and President of Awareity

---

January 8, 2010
IT Compliance in 2010
By Sean Inman, Security & Compliance Professional

quot;60" height="65.5" />

December 23, 2009 BPM: An Ethical Perspective By Bob Larrivee, Director & Industry Analyst for AIIM

November 17, 2009 How secure is secure when it comes to corporate information? By Bob Larrivee, Director & Industry Analyst for AIIM

November 10, 2009 Asset Recovery - Doing Things The Right Way By Brian Mahany

November 5, 2009 IRS gets poor Grades on Identity Theft Efforts (Plus Some helpful hints for all Victims of Identity Theft) By Brian Mahany

November 5, 2009 There is a New Sheriff in Town. Make that 50 New Sheriffs By Brian Mahany

October 22, 2009 UBS REDUX - INTENTIONAL LEAK OR ACCIDENT? By Brian Mahany

October 20, 2009 FBARS OR PRISON BARS? By Brian Mahany

October 16, 2009 “RAT YOUR BOSS” OR “RATS TO RICHES,” THE NEW SEC By Brian Mahany

---

October 9, 2009
PCI Compliance Deadlines
By JCB International

---

October 7, 2009
Reducing False Positives without Increasing Regulatory Risk
By Simon Pearson, Director of Sanctions & PEP Screening at Datanomic Ltd.

---

October 7, 2009 G20 Fallout Continues By Brian Mahany

---

September 29, 2009 BAD BROKER, CLEAN RECORD? By Brian Mahany

---

September 26, 2009 Top 5 Risks When Implementing ECM By Bob Larrivee, Director & Industry Analyst for AIIM

---

September 3, 2009
Increasing Your Risk IQ
BY SUMNER BLOUNT DIRECTOR, GRC PROGRAMS

---

September 1, 2009 .php?option=com_content&id=55&lang=en&view=article">Data Protection: Why are still missing the point? BY MATHIEU GORGE, CEO, VigiTrust

---

September 1, 2009
Staying Abreast of Regulations in a Global Environment
CAROLINE VITSE, MSP TechMedia

---

September 1, 2009 Mobility and Security: Two sides of the same coin By MATHIEU GORGE, CEO, VigiTrust

---

 

September 1, 2009 Security During the M&A Project Lifecycle Security Considerations for Mergers & Acquisitions By MATHIEU GORGE, CEO, VigiTrust

---

September 1, 2009
Head: Heading Off the Next Big Breach
Deck: Keep company information secure in a digital world
BY RYAN RHODES

---

August 18, 2009
The Policy Lifecycle
BY SUMNER BLOUNT, CA, Inc.

---

 

August 18, 2009 SOA: No Governance Needed. Or Is It? By Bob Larrivee, Director & Industry Analyst for AIIM

---

Compensating Controls - Quick Fix at High Cost: Taking "the Easy Way Out" to Satisfy PCI DSS Requirement #3 Carries its Own Risks
BY GARY PALGON, NUBRIDGES, INC.

---

Sensible Security: Are Staff A Security Risk, And Are You To Blame?
BY DAVID KELLEHER, GFI SOFTWARE

---

A Friendly Reminder: Compliance Does Not Equal Security
BY ARI TAKANEN, CODENOMICON

---

Learn To Avoid Data Fiascos, Or Risk New FSA Penalties
BY ALAN CALDER, IT GOVERNANCE LIMITED

---

Don't Let EFS Trick You: Tips On Recovering EFS-Encrypted Data When It Gets Lost
BY VLADIMIR KATALOV, ELCOMSOFT

---

Forecasting Compliance Strategies for 2009 gt;
BY DOMINIQUE LEVIN, LOGLOGIC

---

The Problem of Silos
BY SUMNER BLOUNT, CA, Inc.

---

Compliance in the Cloud: Part 2 The Industry Focus
BY JIM HIETALA AND MARK WILLOUGHBY, COMPLIANCE RESEARCH GROUP

---

Testing Times Here's One Sure Route To Optimal Security At Minimum Cost
BY MARTIN VICKERY, SPIRENT COMMUNICATIONS

---

Cradle to Grave Data Recovery 2.0
BY ALASTAIR MOLYNEUX, KROLL ONTRACK

---

Managing the Mergers & Acquisitions IT Nightmare in the Firewall Team
BY DAVID AMNIZADE, TUFIN TECHNOLOGIES

---

Is Having a Security Policy in Place Really Nine-Tenths of the Law?
BY DAVID AMINZADE, TUFIN TECHNOLOGIES

---

Invest in Information Security to beat downturn risks
BY ALAN CALDER, IT GOVERNANCE LIMITED

---

IT administrators go 'rogue': minimising the threat from inside
BY MARC HUDAVERT, ACTIVIDENTITY

---

How PCI Leaders are Different from Other Merchants
BY DAVE TAYLOR, PCI ALLIANCE

---

Making the Best Use of Your Security Budget in Lean Times: Four Approaches
BY ELIZABETH IRELAND, NCIRCLE LTD

---

Arguments against Tokenization as Tool to Replace Card Data
BY DAVE TAYLOR, PCI ALLIANCE

---

Absence of Evidence Does Not Equal Innocence
BY PAUL THACKERAY, BARRACUDA NETWORKS

---

PCI Leadership: Compliance vs Security
BY DAVE TAYLOR, PCI ALLIANCE

---

The Principles of eDiscovery: Managing Electronic Content By Bob Larrivee, Director & Industry Analyst for AIIM

---

PCI Lessons from the Processing Trenches
BY AARON BILLS, 3DELTA SYSTEMS, INC.

---

Ensure that Your IT Policies and Procedures Comply with Data Security Standards BY MATHIEU GORGE, VIGITRUST

---

Extending PCI Standards to Protect All Confidential Data, Part 2
BY DAVID TAYLOR, PCI ALLIANCE ;

---

Virtualization: What are the Key Steps?
BY TREVOR DEARING, JUNIPER NETWORKS

---

Security The Human Factor
BY PAUL KEARNEY, BT GROUP

---

Extending PCI Standards to Protect All Confidential Data
BY DAVE TAYLOR, PCI ALLIANCE

---

Managing Compliance in the Cloud:
Part 1
BY JIM HIETALA AND MARK WILLOUGHBY, COMPLIANCE RESEARCH GROUP

---

9 Steps to Halt Data Breaches
BY ALAN CALDER, IT GOVERNANCE LIMITED

---

Why More Security Breaches of PCI Compliant Companies are Likely
BY DAVE TAYLOR, PCI ALLIANCE

---

I.T.'s Dirty Little Secret Privileged Passwords
BY MARK FULLBROOK, CYBER-ARK

---

Public WiFi Security Tips
BY DAVID HOBSON MD, GLOBAL SECURE SYSTEMS (GSS)

---

The Top Ten Data Security Myths
BY GORDON RAPKIN, PROTEGRITY

---

What's Really Going on with Media Labeling
BY DORIAN COUGIAS, UNITED COMPLIANCE FRAMEWORK

---

Does Size Matter? When it Comes to Security, the Answer is Yes
BY GREG DAY, MCAFEE INTERNATIONAL LTD.

---

Is Having a Security Policy in Place Really Nine-Tenths of the Law?
BY DAVID AMINZADE, TUFIN SOFTWARE LTD

---

Security Controls are Useless If They're Not Turned On
BY DAVE TAYLOR, PCI ALLIANCE

---

Virtually Compliant: How Implementing New Technology Can Make Your Company Non-Compliant
BY DAVE TAYLOR

---

Does Web 2.0 mean Threat 2.0?
BY ALAN CALDER, IT GOVERNANCE LIMITED

---

Avoid data breaches with secure file transfer
BY GARY SHOTTES, IPSWITCH FILE TRANSFER DIVISION

---

Predictions for 2009: what my favorite writers of the past have to say about our future
BY DORIAN COUGIAS, UNITED COMPLIANCE FRAMEWORK

---

Digital Fingerprints who knows where you have been?
BY GREG DAY, MCAFEE INTERNATIONAL LTD

---

Is PCI Worthless?
BY DAVE TAYLOR

---

Lies, Damned Lies and Statistics
BY CALUM MACLEOD, CYBER-ARK

---

What is the Essence of Governance?
BY DORIAN COUGIAS, UNITED COMPLIANCE FRAMEWORK

---

ISO, ITIL, & CobiT Together Foster Optimal Security Investment
BY MARY JOHNSTON TURNER, JOE OLTSIK AND JOHN MCKNIGHT

---

Paper Compliance vs Operational Compliance: Where is Your Company?
BY DAVE TAYLOR

---

Implementing IT-GRC: Five Biggest Pitfalls in IT Governance, Risk, & Compliance
BY PROFESSOR SANJAY ANAND

---

So Long Silos Move Beyond Silos to an Integrated, Automated Approach
BY JIM HIETALA

---

Assessing the ROI for IT Compliance
BY DR. VICTOR BERLIN

---

Are Your Stores Worth Stealing From
BY DAVE TAYLOR

---

A Compelling Argument for Automated Code Testing
BY PROFESSOR HOWARD A. SCHMIDT

---

The CORES of Compliance
BY TOM DIAMOND

---

Moving from Vulnerable Code to Vulnerable Service: The IT Compliance Challenge
BY RON MEYRAN

---

Adapt Or Be Left Behind: The Changing World of Compliance within the United States Department of Defense
BY SETH COWAND AND ROB AYOUB

---

From IT Compliance to IT Governance - Managing Risk Within the IT Organization
BY SANJAY ANAND

---

What can Government Agencies (like the SEC) Teach You About Compliance?
BY DAVID WILSON

---

Technical Challenges to Electronic Discovery
BY RUSSELL SHUMWAY

---

Categorizing a System: Why must this be so hard?
BY GARY TARBET

---

Compliance Training: Quick and Cost-Effective with Online Learning
BY CHARLIE GILLETTE

---

Minding Your Partner's Security A "Weakest Link" Scenario
BY DAVE TAYLOR

---

Tokenization - Part 2 How Static is Your Data?
BY DAVE TAYLOR

---

Tokenization - You don't Have to Protect Data You Don't Have
BY DAVE TAYLOR

---

Your Security Log Files Are a Discoverable Liability
BY DAVE TAYLOR

---

Is PCI a "mission accomplished?"
BY DAVE TAYLOR

---

Global Compliance Initiatives: What do They Mean for Me?
BY ROB AYOUB

---

The Role and Responsibility of a Chief Compliance Officer
BY GUY F. TALARICO, J.D.

---

Governance and The Board of Directors: Taking IT from the Backroom to the Boardroom
BY SANJAY ANAND

---

Information Technology Compliance Best Practices
BY ALAN BELSHAW

---

Information Systems Security Engineering in the Acquisition of Secure Information Systems
BY BRYAN S. CLINE

---

Winning Cooperation with the Magic Question "Why?"
BY MARGARET E. ANDERSON

---

Addressing Multiple Compliance Regulations
BY ALEX ZADROZNY

---

Identity Auditing: Key to Successful IT Compliance
BY TOM REPEDE

---

Five Core Competencies of IT Compliance Six Sigma
BY CHRISAN HERROD

---